Glossary
Data protection officer (DPO)
The person tasked with ensuring GDPR compliance in an organisation and advising on data protection.
The DPO (data protection officer) advises their organisation on its obligations, ensures GDPR compliance and acts as the link with the CNIL. They are mandatory in the public sector and for organisations that process data on a large scale or sensitive data. They must be able to work in full independence.
See also
Data protection impact assessment (DPIA)A mandatory study to identify and reduce the risks of a data processing operation that is sensitive for people.EBIOS Risk ManagerA French method, led by ANSSI, for analysing and managing an organisation's cyber risks.ISSP (security policy)The reference document that sets an organisation's security rules, objectives and responsibilities.Cyber Resilience Act (CRA)A European regulation that imposes cybersecurity requirements on digital products sold in Europe.